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THAT WHICH IS CLAIMED: 



1. 



A method of selective encryption of transmitted messages. 



comprising the steps of: 

determining a group encryption key for an unencrypted message; 

generating an error check value for the unencrypted message; 

encrypting the unencrypted message using the group encryption key; and 

transmitting the encrypted message and the error check value on a channel 
of a communication network wdth an associated destination address. 

2. A method according to Claim 1, wherein the associated destination 
address is a broadcast address of the communication network and wherein the 
channel is a broadcast channel of the communication network. 

3. A method according to Claim 2 wherein the step of determining a 
group encryption key for a message comprises the step of determining a service 
associated with the message and selecting a group encryption key associated with 
the determined service. 

4. A method according to Claim 2 wherein the step of generating an 
error check value comprises the step of computing redundancy bits for the 
message. 

5. A method according to Claim 4 wherein the step of transmitting 
further comprises transmitting the encrypted message with the unencrypted 
redimdancy bits appended to the encrypted message. 

6. A method according to Claim 4 wherein the step of determining a 
group encryption key is preceded by the step of determining if the unencrypted 
message is intended for a broadcast group having an associated group encryption 
key; and 

wherein the steps of determining a group encryption key, generating an 
error check value, encrypting the unencrypted message and transmitting the 
encrypted message are not performed if the unencrypted message is not intended 
for a broadcast group having an associated group encryption key. 
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7. 



A method according to Claim 6 further comprising the steps of: 



determining if the unencrypted message is associated with at least one of 
general broadcast or an individual address; 

transmitting the unencrypted message on the broadcast channel of the 
communication network with the broadcast address of the commxmication network 
if the unencrypted message is associated with general broadcast; and 

transmitting the unencrypted message on the communication network with 
the individual address if the unencrypted message is associated with an individual 
address. 

8. A method according to Claim 6 further comprising the steps of: 
determining if the unencrypted message is associated with at least one of 

general broadcast or an individual address; 

encrypting the unencrypted message using a general encryption key if the 
unencrypted message is associated with at least one of general broadcast or an 
individual address; 

generating an error check value based on the encrypted message if the 
unencrypted message is associated with at least one of general broadcast or an 
individual address; and 

transmitting the encrypted message and the error check value based on the 
encrypted message on the commimication network with the individual address if 
the unencrypted message is associated with an individual address and with the 
broadcast address of the communication network if the unencrypted message is 
associated with general broadcast. 

9. A method according to Claim 2 further comprising the steps of: 
receiving the encrypted message and added error check value on the 

broadcast channel of the communication network; 

determining if the received message is directed to the broadcast address of 
the communication network; 

generating an error check value for the received message; 

determining if the error check value indicates an error; 
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decrypting the received message using the group encryption key if the 

received message is directed to a broadcast address of the communication network 

and the error check value indicates an error; 

generating an error check value for the decrypted message; and 
assigning the received message to a group associated with the group 

encryption key if the error check value for the decrypted message indicates no 

error. 

10. A method according to Claim 9 wherein the step of determining a 
group encryption key for an unencrypted message comprises the step of 
determining one of a plurality of services which is associated with the message and 
selecting a one of a plurality of group encryption keys which is associated with the 
determined one of the plurality of services which is associated with the message as 
the group encryption key for the unencrypted message. 

11. A method according to Claim 1 0 further comprising the step of 
repeating the steps of decrypting, generating an error check value for the decrypted 
message and assigning the received message to a group using selected ones of the 
plurality of group encryption keys as the group encryption key until at least one of 
the error check value for the decrypted message indicates no error and each of the 
selected ones of the plurality of group encryption keys has been used as the group 
encryption key. 

12. A method according to Claim 1 1 further comprising the steps of: 
receiving a request for one of the plurality of group encryption keys from a 

user; 

associating the user wdth a service associated vsdth the requested one of the 
plurality of group encryption keys; and 

transmitting the requested one of the plurality of group encryption keys to 
the user on the broadcast channel of the communication network vsdth an 
associated individual address of the user. 

13. A method according to Claim 3 further comprising the steps of: 
receiving a request for the group encryption key from a user; 
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associating the user with the service associated with the group encryption 
key; and 

transmitting the group encryption key to the user on the broadcast channel 
of the communication network with an associated individual address of the user. 

14. A method according to Claim 13 wherein the group encryption key 
has an associated duration and wherein the step of determining a group encryption 
key for the unencrypted message further comprises the step of updating a group 
encryption key for the unencrypted message when a previous group encryption key 
has exceeded its associated duration. 

15. A method according to Claim 13 wherein the step of transmitting 
the group encryption key is followed by the steps of: 

updating the group encryption key; and 

transmitting the updated group encryption key to users associated with the 
service associated with the group encryption key using associated individual 
addresses of the users associated with the service associated with the group 
encryption key. 

16. A method according to Claim 13 further comprising the steps of: 
receiving the transmitted group encryption key; 

receiving the encrypted message and added error check value on the 
broadcast channel of the communication network; 

determining if the received message is directed to the broadcast address of 
the communication network; 

generating an error check value for the received message; 

determining if the error check value indicates an error; 

decrypting the received message using the group encryption key if the 
received message is directed to a broadcast address of the communication network 
and the error check value indicates an error; 

generating an error check value for the decrypted message; and 

assigning the received message to a group associated with the group 
encryption key if the error check value for the decrypted message indicates no 
error. 
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17. A method of selective decryption of transmitted messages, 
comprising the steps of: 

receiving a message on a channel of a communication network; 

determining if the received message is directed to a broadcast address of 
the commimication network; 

generating an error check value for the received message; 

determining if the error check value indicates an error; 

decrypting the received message using a group encryption key if the 
received message is directed to a broadcast address of the communication network 
and the error check value for the received message indicates an error; 

generating an error check value for the decrypted message; and 

assigning the received message to a group associated with the group 
encryption key if the error check value for the decrypted message indicates no 
error. 

18. A method according to Claim 17 wherein the step of decrypting the 
received message is preceded by the steps of: 

transmitting a request for the group encryption key; and 
receiving the group encryption key on the channel of the communication 
network. 

19. A method according to Claim 17 further comprising the step of 
repeating the steps of decrypting, generating an error check value for the decrypted 
message and assigning the received message to a group using ones of a plurality of 
group encryption keys as the group encryption key until at least one of the error 
check value for the decrypted message indicates no error and each of the ones of 
the plurality of group encryption keys has been used as the group encryption key. 

20. A method according to Claim 1 7 wherein the step of generating an 
error check value for the decrypted message comprises the steps of: 

computing redundancy bits for the decrypted message; and 
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comparing the computed redundancy bits to redundancy bits included with 
the received message to determine if an error is indicated for the decrypted 
message. 

21. A method according to Claim 1 7 wherein the step of generating an 
error check value for the decrypted message comprises the steps of: 

applying an error correction code to the decrypted message; and 
determining that an error is indicated for the decrypted message if any 

errors remain in the decrypted message after applying the error correction code to 

the decrypted message. 

22. A method according to Claim 17 further comprising the steps of: 
determining if the received message is directed to an individual address of a 

receiver device receiving the message; and 

decrypting the received message using a general encryption key different 
from the group encryption key if the received message is directed to the individual 
address. 

23. A method according to Claim 22 further comprising the step of 
decrypting the received message using the general encryption key if the received 
message is directed to a broadcast address of the communication network and the 
error check value for the received message indicates no error. 

24. A selective encryption system comprising: 

an encryption circuit that encrypts a message using a group encryption key; 

an error check value generation circuit that generates an error check value 
based on the unencrypted message and adds the error check value to the encrypted 
message; 

a transmitter that transmits the encrypted message with the added error 
check value on a channel of a commvmication network; and 

an encryption key selection circuit that selects one of a plurality of 
candidate group encryption keys as the group encryption key based on a service 
associated with the message. 
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25. A system according to Claim 24 further comprising: 

a receiver that receives requests for the group encryption key; and 
wherein the transmitter is configured to transmit the grpup encryption key 

with an individual address of a requesting device responsive to receiving a request 
5 for the group encryption key; and 

wherein the transmitter transmits the encrypted message with a broadcast 

address of the conununication network. 

26. A selective decryption system comprising: 

a receiver that receives a message on a channel of a communication 
network; 

a decryption circuit that decrypts the message using a group encryption 

5 key; 

an error check value generation circuit that generates an error check value 
for the received message and the decrypted message; 

a comparator circuit responsive to the error check value generation circuit 
that determines whether an error is indicated for the received message and the 
1 0 decrypted message; and 

a selection circuit responsive to the comparator circuit that selects one of 
the received message or the decrypted message as a message to process. 

27. A system according to Claim 26 further comprising: 

a transmitter that transmits a request for the group encryption key; and 
wherein the receiver is configured to receive the group encryption key. 

28. A system for selective encryption of transmitted messages, 
comprising: 

means for detenriining a group encryption key for an unencrypted message; 
means for generating an error check value for the xmencrypted message; 
5 means for encrypting the unencrypted message using the group encryption 

key; 

means for adding the error check value to the encrypted message; and 
means for transmitting the encrypted message and added error check value 
on a channel of a communication network with an associated destination address. 

26 



Attorney Dock^p94-364 

29. A system according to Claim 28, wherein the associated destination 
address is a broadcast address of the communication network and wherein the 
channel is a broadcast channel of the communication network. 

30. A system according to Claim 29 wherein the means for determining 
a group encryption key for a message comprises means for determining a service 
associated with the message and selecting a group encryption key associated with 
the determined service. 

31. A system according to Claim 29 wherein the means for generating 
an error check value comprises means for computing redundancy bits for the 
message. 

32. A system according to Claim 3 1 further comprising: 

means for determining if the unencrypted message is associated with at 
least one of general broadcast or an individual address; 

means for transmitting the imencrypted message on a broadcast channel of 
5 a connmunication network with the broadcast address of the communication 
network if the unencrypted message is associated with general broadcast; and 

means for transmitting the unencrypted message on a broadcast channel of 
a communication network wath the individual address if the unencrypted message 
is associated with an individual address. 

33. A system according to Claim 3 1 further comprising: 

means for determining if the unencrypted message is associated with at 
least one of general broadcast or an individual address; 

means for encrypting the unencrypted message using a general encryption 
5 key if the unencrypted message is associated v^th at least one of general broadcast 
or an individual address; 

means for generating an error check value based on the encrypted message 
if the imencrypted message is associated with at least one of general broadcast or 
an individual address; and 
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10 



means for adding the error check value based on the encrypted message to 



the encrypted message if the imencrypted message is associated with at least one of 
general broadcast or an individual address; and 

means for transmitting the encrypted message and the appended error check 
value based on the encrypted message on a broadcast channel of a communication 
1 5 network with the individual address if the unencrypted message is associated with 
an individual address and with the broadcast address of the communication 
network if the unencrypted message is associated with general broadcast. 

34. A system according to Claim 30 further comprising: 

means for receiving a request for the group encryption key from a user; 

means for associating the user wdth the service associated with the group 
encryption key; and 
5 means for transmitting the group encryption key to the user on the 

broadcast channel of the communication network with an associated individual 
address of the user. 

35. A system according to Claim 34 wherein the group encryption key 
has an associated duration and wherein the means for determining a group 
encryption key for the xmencrypted message further comprises means for updating 
a group encryption key for the unencrypted message when a previous group 

5 encryption key has exceeded its associated duration. 

36. A system according to Claim 34 further comprising: 
means for updating the group encryption key; and 

means for transmitting the updated group encryption key to users 
associated v^th the service associated with the group encryption key using 
5 associated individual addresses of the users associated with the service associated 
with the group encryption key. 

37. A system according to Claim 34 further comprising: 
means for receiving the transmitted group encryption key; 

means for receiving the encrypted message and added error check value on 
the broadcast channel of the communication network; 
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5 means for determining if the received message is directed to the broadcast 

address of the communication network; 

means for generating an error check value for the received message; 
means for determining if the error check value indicates an error; 
means for decrypting the received message using the group encryption key 
10 if the received message is directed to a broadcast address of the communication 
network and the error check value indicates an error; 

means for generating an error check value for the decrypted message; and 
means for assigning the received message to a group associated with the 
group encryption key if the error check value for the decrypted message indicates 
15 no error. 




38. A system for selective decryption of transmitted messages, 
comprising: 

means for receiving a message on a channel of a communication network; 

means for determining if the received message is directed to a broadcast 
5 address of the communication network; 

means for generating an error check value for the received message; 

means for determining if the error check value indicates an error; 

means for decrypting the received message using a group encryption key if 
the received message is directed to a broadcast address of the conmiunication 
10 network and the error check value for the received message indicates an error; 

means for generating an error check value for the decrypted message; and 

means for assigning the received message to a group associated with the 
group encryption key if the error check value for the decrypted message indicates 
no error. 



39. A system according to Claim 38 further comprising: 
means for transmitting a request for the group encryption key; and 
means for receiving the group encryption key on the channel of the 

conmiunication network. 

40. A system according to Claim 38 further comprising means for 
repeating the steps of decrypting, generating an error check value for the decrypted 
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message and assigning the received message to a group using ones of a plurality of 
group encryption keys as the group encryption key until at least one of the error 
check value for the decrypted message indicates no error and each of the ones of 
the plurality of group encryption keys has been used as the group encryption key. 

41 . A system according to Claim 38 wherein the means for generating 
an error check value for the decrypted message further comprises: 

means for computing redundancy bits for the decrypted message; and 
means for comparing the computed redundancy bits to redundancy bits 

included vs^ith the received message to determine if an error is indicated for the 

decrypted message. 

42. A system according to Claim 38 wherein the means for generating 
an error check value for the decrypted message further comprises: 

means for applying an error correction code to the decrypted message; and 
means for determining that an error is indicated for the decrypted message 

if any errors remain in the decrypted message after applying the error correction 

code to the decrypted message. 

43. A system according to Claim 38 further comprising: 

means for determining if the received message is directed to an individual 
address of a receiver device receiving the message; and 

means for decrypting the received message using a general encryption key 
different from the group encryption key if the received message is directed to the 
individual address. 

44. A system according to Claim 43 further comprising means for 
decrypting the received massage using the general encryption key if the received 
message is directed to a broadcast address of the communication network and the 
error check value for the received message indicates no error. 
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